Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6/a585uqd5nHIWFQppxv71f3qh0js.roa
File: a585uqd5nHIWFQppxv71f3qh0js.roa (raw, json)
Hash identifier: J8cpKleqZaUaomBI2Ufgt9dDZiL+VuLAnAUPwT90l8w=
Subject key identifier: 6B:9F:39:BA:A7:79:9C:72:16:15:0A:69:C6:FE:F5:7F:7A:A1:D2:3B
Certificate issuer: /CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Certificate serial: 0506
Authority key identifier: 94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/a585uqd5nHIWFQppxv71f3qh0js.roa
Signing time: Thu 04 Jul 2024 02:30:14 +0000
ROA not before: Thu 04 Jul 2024 02:30:14 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 23852
IP address blocks: 124.175.192.0/21 maxlen: 24
124.175.200.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 04:09:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1286 (0x506)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Validity
Not Before: Jul 4 02:30:14 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=6B9F39BAA7799C7216150A69C6FEF57F7AA1D23B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f3:4a:66:d3:26:5a:ef:a4:c0:1c:c9:f3:0c:
79:2f:81:ce:70:f7:f7:f0:52:5b:b2:55:d4:18:d4:
4a:7d:a7:e8:eb:ef:34:96:8a:94:f1:21:13:1d:6d:
3f:ef:40:9c:58:15:88:89:73:38:9e:24:91:44:7e:
00:89:20:90:da:1c:01:fd:e2:9a:15:3f:3d:1c:27:
86:6f:8c:41:7d:4b:14:8d:a3:8d:e7:4c:e1:b6:27:
e7:ac:de:be:78:f3:fe:3d:20:17:21:e3:ab:6e:4b:
a4:90:3e:06:5d:1a:d6:65:72:da:a9:31:ce:72:f0:
59:90:74:51:3c:ab:e7:e1:b8:68:d1:b1:24:35:d1:
ef:52:0b:4e:5b:d4:77:63:bf:c0:1b:ae:af:05:db:
24:55:af:dd:15:4c:6d:43:e5:d9:87:d1:75:5f:f5:
08:14:bd:7f:ea:61:e6:ad:04:1f:36:08:ba:72:23:
8e:1c:b1:33:ac:34:48:70:b0:b6:81:79:93:d1:3a:
5c:b0:c0:ac:d5:25:5b:50:ef:37:9f:e7:06:af:80:
bd:5e:87:5e:58:9f:06:fc:6b:f8:90:9d:a0:ca:f5:
14:4b:5f:23:ba:f0:40:13:8a:7f:ab:69:28:0d:ac:
ae:54:b4:8c:1a:38:ba:01:b2:53:ff:b7:2f:cf:19:
c4:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:9F:39:BA:A7:79:9C:72:16:15:0A:69:C6:FE:F5:7F:7A:A1:D2:3B
X509v3 Authority Key Identifier:
keyid:94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/a585uqd5nHIWFQppxv71f3qh0js.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.175.192.0/20
Signature Algorithm: sha256WithRSAEncryption
b9:a4:53:56:1b:d8:9c:3e:c6:46:75:ce:91:07:53:4f:8f:e8:
3a:e8:ac:93:6d:1d:a4:1a:ca:01:c2:cf:82:a1:b9:d8:bb:ff:
26:8b:be:76:f7:3b:6b:de:f4:49:34:98:87:45:ca:66:1e:dc:
15:81:5b:4d:6d:7c:7d:8c:d8:b8:d3:95:e6:b4:3e:61:b1:80:
18:06:f1:4d:26:27:8e:47:e0:48:16:b4:2f:42:4a:e4:43:23:
7a:11:7a:a6:e9:50:a1:be:1a:b5:90:ae:ad:85:b3:49:78:e8:
39:b3:d2:8b:d1:e9:c5:e5:d4:23:eb:db:2e:45:e4:2a:c8:f0:
36:ee:27:f7:43:ad:59:8d:37:9c:c5:09:74:8a:d7:9d:f1:05:
b6:aa:24:fa:13:f7:ef:16:f4:74:b8:3b:7c:01:08:4e:c7:04:
dc:12:9e:16:4b:5f:9e:7f:3d:57:56:b1:0e:b9:04:e1:6b:52:
33:42:18:d2:bb:77:22:f0:a4:83:22:e9:51:8e:b2:56:de:7f:
f8:00:6b:b5:f2:aa:ac:34:1e:a8:fd:fa:74:e6:41:c7:d9:d0:
fc:5e:b1:46:d0:1f:09:a8:04:a3:64:73:61:79:fc:cc:8c:04:
b6:aa:1b:a0:b5:86:cb:89:0c:5a:2e:3c:32:e2:10:ff:0a:af:
ab:6a:a6:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 05:43:53 2024 by rpki-client on console-fra.rpki-client.org